Alternatives and similar repositories for Bug-Bounty-Scripts:

Users that are interested in Bug-Bounty-Scripts are comparing it to the libraries listed below

• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆49Updated 2 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆53Updated last year
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆42Updated 3 years ago
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated last year
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆32Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆33Updated 2 years ago
• tamimhasan404 / Gau-Expose
  It grep subdomains, email/username, build custom wordlist etc from gau results
  ☆46Updated 2 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆54Updated 2 years ago
• MShahine / Bug-Bounty-Recon
  All The Notes And Tips I FOund In Github And Twitter I Put Them Here
  ☆33Updated 4 years ago
• h1pmnh / sqli-dojo-docker
  A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment
  ☆41Updated 7 months ago
• ihebski / db
  Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]
  ☆28Updated 4 years ago
• tr3ss / newclei
  A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.
  ☆53Updated last year
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆38Updated 3 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆35Updated 2 years ago
• Ravirajrao / HackerOne-Reports
  Cool HackerOne Reports
  ☆19Updated 2 years ago
• carlospolop / Pastos
  ☆50Updated 2 years ago
• z3dc0ps / BBSSRF
  BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection
  ☆38Updated last year
• R0X4R / ssrf-tool
  An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.
  ☆43Updated 3 years ago
• ph4nt0m-py / login-panel-wordlist
  ☆32Updated 2 years ago
• 0xRTH / IISRecon
  IIS shortname scanner + bruteforce
  ☆50Updated 11 months ago
• six2dez / resolvers_reconftw
  Resolvers updated daily for reconftw
  ☆46Updated last year
• byt3hx / gup
  gup aka Get All Urls parameters to create wordlists for brute forcing parameters.
  ☆17Updated 3 years ago
• EasyRecon / wappaGo
  ☆53Updated 8 months ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆50Updated 2 years ago
• r00tkie / grep-pattern
  collection of various grep patterns collected from tomnomnom/gf and other places
  ☆21Updated 4 years ago